CVE-2012-0862

Severity :

Medium

Published :

2012-06-04

Modified :

2013-10-10

Base Score :

4.3

Details :

builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1.